Warning from Spyware Doctor: "Possible Website Hijack"

It says that the Possible Hijack Website indicates that a good known site can be hijacked. Adware, Spyware, and Phising sites may use Windows Hosts files to redirect your browser to malicious site when you try to access a valid site such as your bank.

The Infection Risk is HIGH....BTW, its by Spyware Doctor and none of my other Spyware programs even saw it, so I think it may be my Spyware Doctor....

Here is the hosts File entry: (387) 127.0.0.1 ads.mcafee.com


Please help by telling me what to do...I can't get rid of it even when I reboot.

 

First:
Please download HOSTER and then follow the below steps.

• Unzip Hoster to a convenient folder such as C:\Hoster

• Run Hoster.exe, click Restore Original Hosts and then click OK.
• Click the X to exit the program.

Second:

http://www.majorgeeks.com/images/grenade.gif Download HijackThis 1.99.1

http://www.majorgeeks.com/images/grenade.gif Unzip the hijackthis.exe file to a folder you create named C:\Program Files\HJT

http://www.majorgeeks.com/images/grenade.gif Do NOT run Hijack This from the Desktop, a temp folder, or a sub-folder of C:\Documents and Settings, or choose to run it directly from the ZIP file as your backups will not be safely stored.

http://www.majorgeeks.com/images/grenade.gifBefore running HijackThis: You must close each of the following:your web browser, e-mail client, instant messenger, and programs like notepad, wordpad, MS Word etc. And any other unnecessary running programs.

http://www.majorgeeks.com/images/grenade.gifRun HijackThis and save your log file.

http://www.majorgeeks.com/images/grenade.gif Post your log as an ATTACHMENT to your next post. (Do NOT copy/paste the log into your post as it will be removed).

http://www.majorgeeks.com/images/grenade.gifNeed help with HJT? See this thread: NO HIJACK THIS LOG FILES BEFORE READING THIS: HJT Tutorial & LOG File Posting

 

Oh my god! Dude, you rock! I had HijackThis already so i didn't bother running it since I just clicked Restore original Hosts and then I tried to get rid of the file and it worked! Dude, you are amazing! I don't need to show you, unless you want to but I swear, I clicked Remove and I saw it just disappear! You guys officialy became my number one message boards...Thanks so much!

 

hi what dos HOSTER do bg

 

It restores the Original Hosts in your HOST file.

 

Yeah, just to be safe go ahead and attach me a current HJT log.

 

I will, but how? i'm sorry, newb.

 

http://www.majorgeeks.com/images/grenade.gif Download HijackThis 1.99.1

http://www.majorgeeks.com/images/grenade.gif Unzip the hijackthis.exe file to a folder you create named C:\Program Files\HJT

http://www.majorgeeks.com/images/grenade.gif Do NOT run Hijack This from the Desktop, a temp folder, or a sub-folder of C:\Documents and Settings, or choose to run it directly from the ZIP file as your backups will not be safely stored.

http://www.majorgeeks.com/images/grenade.gifBefore running HijackThis: You must close each of the following:your web browser, e-mail client, instant messenger, and programs like notepad, wordpad, MS Word etc. And any other unnecessary running programs.

http://www.majorgeeks.com/images/grenade.gifRun HijackThis and save your log file.

http://www.majorgeeks.com/images/grenade.gif Post your log as an ATTACHMENT to your next post using Manage Attachments. (Do NOT copy/paste the log into your post as it will be removed).

http://www.majorgeeks.com/images/grenade.gifNeed help with HJT? See this thread: NO HIJACK THIS LOG FILES BEFORE READING THIS: HJT Tutorial & LOG File Posting

 

Sorry it took so long to reply. I was downloading programs for "How to protect yourself from malware" and also added my own Zone Alarm pro...See, i used to be into protecting computers but deleted all my safety programs for some stupid Fuc**** reason! i am about to post it...Gimme a minute.

 

Man, I can't...My Zone Alarm pro says it has blocked

"The firewall has blocked Internet Access to your computer (ICMP Unreachable) from 172.16.0.1"


time: 4/4/2005 8:56:38 P.M.

 

Temporarily disable your firewall and try again.